* - onUpload($roo)
* - setFromRoo($ar) - values from post (deal with dates etc.) - return true|error string.
*
- * - toEventString (for logging)
+ * - toEventString (for logging - this is generically prefixed to all database operations.)
*/
class Pman_Roo extends Pman
function get($tab)
{
// $this->jerr("Not authenticated", array('authFailure' => true));
- echo '<PRE>';print_R($_GET); DB_DataObject::debuglevel(1);
+ //echo '<PRE>';print_R($_GET); DB_DataObject::debuglevel(1);
$this->init(); // from pnan.
//print_r($x);
// build join if req.
- DB_DataObject::debugLevel(1);
+ //DB_DataObject::debugLevel(1);
$total = $x->count($this->countWhat);
// sorting..
//
* @arg DB_DataObject $x
*
*/
- function applySort($x)
+ function applySort($x, $sort = '', $dir ='')
{
// Db_DataObject::debugLevel(1);
- $sort = empty($_REQUEST['sort']) ? '' : $_REQUEST['sort'];
- $dir = (empty($_REQUEST['dir']) || strtoupper($_REQUEST['dir']) == 'ASC' ? 'ASC' : 'DESC');
+ $sort = empty($_REQUEST['sort']) ? $sort : $_REQUEST['sort'];
+ $dir = empty($_REQUEST['dir']) ? $dir : $_REQUEST['dir'];
+ $dir = $dir == 'ASC' ? 'ASC' : 'DESC';
if (method_exists($x, 'onInsert')) {
$x->onInsert($_REQUEST, $this);
}
- $this->addEvent("ADD", $x, $x->toEventString());
+ $this->addEvent("ADD", $x);
// note setFrom might handle this before hand...!??!
if (!empty($_FILES) && method_exists($x, 'onUpload')) {
$this->jerr("PERMISSION DENIED");
}
+ // check any locks..
+ // only done if we recieve a lock_id.
+ // we are very trusing here.. that someone has not messed around with locks..
+ // the object might want to check in their checkPerm - if locking is essential..
+
+ $lock = DB_DataObjecT::factory('Core_locking');
+ if (is_a($lock,'DB_DataObject')) {
+
+ $lock->on_id = $x->id;
+ $lock->on_table= $x->tableName();
+ if (!empty($_REQUEST['_lock_id'])) {
+ $lock->whereAdd('id != ' . ((int)$_REQUEST['_lock_id']));
+ }
+ $lock->limit(1);
+ if ($lock->find(true)) {
+ // it's locked by someone else..
+ $p = $lock->person();
+ $this->jerr("Your lock is invalid, This record is locked by " . $p->name . " at " .$lock->created);
+ }
+ // check the users lock..
+
+ }
+
+
+ if ($lock->find(true)) {
+ if (empty($_REQUEST['_lock_id']) || $lock->id != $_REQUEST['_lock_id']) {
+
+ $this->jerr("
+
+ }
+
+ }
+
+
+
+
$_columns = !empty($req['_columns']) ? explode(',', $req['_columns']) : false;
} else {
$x->setFrom($req);
}
- $this->addEvent("EDIT", $x, $x->toEventString());
+ $this->addEvent("EDIT", $x);
//print_r($x);
//print_r($old);
while ($x->fetch()) {
$xx = clone($x);
+
+ // perms first.
+
+ if (method_exists($x, 'checkPerm') && !$x->checkPerm('D', $this->authUser)) {
+ $this->jerr("PERMISSION DENIED");
+ }
+
+ // before delte = allows us to trash dependancies if needed..
+ if ( method_exists($xx, 'beforeDelete') && ($xx->beforeDelete() === false)) {
+ $errs[] = "Delete failed ({$xx->id})\n". (isset($xx->err) ? $xx->err : '');
+ continue;
+ }
+ // now check deps.
+
foreach($affects as $k=> $true) {
$ka = explode('.', $k);
$chk = DB_DataObject::factory($ka[0]);
$this->jerr('Delete Dependant records first ('. $ka[0]. ':' . $ka[1] .'='.$xx->$pk.')');
}
}
+ // finally log it..
+ $this->addEvent("DELETE", $x);
-
- if (method_exists($x, 'checkPerm') && !$x->checkPerm('D', $this->authUser)) {
- $this->jerr("PERMISSION DENIED");
- }
-
- $this->addEvent("DELETE", $x, $x->toEventString());
- if ( method_exists($xx, 'beforeDelete') && ($xx->beforeDelete() === false)) {
- $errs[] = "Delete failed ({$xx->id})\n". (isset($xx->err) ? $xx->err : '');
- continue;
- }
$xx->delete();
}
if ($errs) {
}
if (count($ar)) {
- var_dump($key);
- var_dump($this->colsJoinName[$key]);
+
$x->whereAddIn(
- isset($this->colsJoinName[$key]) ?
- $this->colsJoinName[$key] :
+ isset($this->colsJname[$key]) ?
+ $this->colsJname[$key] :
($x->tableName(). '.'.$key),
$ar, $quote ? 'string' : 'int');
}
$key = substr($key, 1) ;
$x->whereAdd( (
- isset($this->colsJoinName[$key]) ?
- $this->colsJoinName[$key] :
+ isset($this->colsJname[$key]) ?
+ $this->colsJname[$key] :
$x->tableName(). '.'.$key ) . ' != ' .
(is_numeric($val) ? $val : "'". $x->escape($val) . "'")
);